Slashdot Mirror

← Back to Stories (view on slashdot.org)

Google to be Our Web-Based Anti-Virus Protector ?

Posted by Zonk on from the oh-google-is-there-anything-you-can't-do dept.

cyberianpan writes "For some time now, searches have displayed 'this site may harm your computer' when Google has tagged a site as containing malware. Now the search engine giant is is further publicizing the level of infection in a paper titled: The Ghost In The Browser. For good reason, too: the company found that nearly 1 in ten sites (or about 450,000) are loaded with malicious software. Google is now promising to identify all web pages on the internet that could be malicious - with its powerful crawling abilities & data centers, the company is in an excellent position to do this. 'As well as characterizing the scale of the problem on the net, the Google study analyzed the main methods by which criminals inject malicious code on to innocent web pages. It found that the code was often contained in those parts of the website not designed or controlled by the website owner, such as banner adverts and widgets. Widgets are small programs that may, for example, display a calendar on a webpage or a web traffic counter. These are often downloaded form third party sites. The rise of web 2.0 and user-generated content gave criminals other channels, or vectors, of attack, it found.'"

12 of 171 comments (clear)

  1. aid and comfort to the enemy? by fred+fleenblat · · Score: 1, Interesting

    Since most of this malware attacks windows machines, isn't google helping microsoft more than it's helping linux or apple?

    1. Re:aid and comfort to the enemy? by Anonymous Coward · · Score: 2, Interesting

      it's harder to insatll malware on mac osx and linux then it is on windows.

      So if you install malware on OS X or Linux, it's on Windows?

      Not unless you have Wine running, too.

  2. Only works through Goolge now... by cyberianpan · · Score: 4, Interesting

    This is potentially a very useful service but not all URLs we visit are from Google searches, some we still type in others as links from pages. However could we soon expect a Firefox add in that will filter all http requests through Google ? So then our new overlords will indeed know everything about our web-habits ?

  3. Pros and Cons by PixieDust · · Score: 4, Interesting
    I can see a lot of Pros and Cons to this. While certainly it's good that such a major player is taking an active and aggressive stance on this, I thinkk it's also going to cause a lot of people to have a false sense of security. And while this only affects users who search for pages (and that is a LOT of traffic), it's still going to bring the question to some users "Google tells me if a site is dangerous, what do I need malware protection for?"

    I surf almost exclusively in Windows, using IE (IE6 + XP Pro on Desktop, IE7 + Vista on laptop) with no protection, and I've not had an issue with malware in years. But most people's browsing habits aren't quite like mine.

    One other effect I can see this having, is let's say www.bigcompanyhere.com gets tagged as being potentially harmful. Now Google has done them a favor by alerting them to a security problem, which they can then address, and are likely to do so much quicker to try and minimize damage to their image.

    I'm fairly interested to see how this plays out.

    1. Re:Pros and Cons by Radon360 · · Score: 3, Interesting

      One other effect I can see this having, is let's say www.bigcompanyhere.com gets tagged as being potentially harmful. Now Google has done them a favor by alerting them to a security problem, which they can then address, and are likely to do so much quicker to try and minimize damage to their image.

      The next question would be, what are Google's plans/procedure for getting a site recrawled after a problem is corrected? I could see a company being be upset about not having a quick and effective way of getting this flag cleared after fixing the problem. Or, for that matter, a less scrupulous site operator removing the malware, getting cleared, then reintroducing it, and the repeat the cycle on the next crawl when it gets flagged again.

      While I think Google would like to just say that such a warning would be reset on the next crawl showing a clean site, most businesses would not be happy about this. This could potentially become an administrative overhead nightmare if not carefully done.

  4. Useful, if reliable, but not 100% by Bearhouse · · Score: 3, Interesting

    Some people don't like, or cannot use, Firefox or Opera, plus sensible add-ons such as anti-phising plug-ins, noscript...

    For example, one of my (very big) corp. customers is still running IE 7...

    When I challenged the support guys about this, they said 'that's OK, we detect & block most things at the firewall'...

    *sigh*

    When I pointed out that:
    1. That's bullshit.
    2. Lots of their managers travelled, and surfed the net via unsecure methods like hotels using proxy servers, public wifi, they said 'that's OK, they can only access the intranet and internal mail via VPN'.

    *double sigh*

    So now I advise people not to click on URLs directly, or type them in, but go via Google. It's better than nothing...

  5. What I'd like to know by MikeRT · · Score: 2, Interesting

    Is how they plan on allowing sites to redeem themselves or explain why they had the software there in the first place. If some spammer embeds some malware in a comments section, and you later find it and clean it up, will you be able to get back into Google's good graces?

  6. Re:Wouldn't good sites with bad ads or posts... by arivanov · · Score: 2, Interesting

    They would.

    And the only thing a person who wants to distribute malware neeeds to do is some minimal robots.txt manipulation. The pages with the "bait" content can still be "crawlable" by google while the malware may sit in areas which have been made non-crawlable.

    Yet another stupid idea. Almost as stupid as the .bank domain. Or windows asking you to reboot just because the program you run was called "install" or had an MSI extension.

    --
    Baker's Law: Misery no longer loves company. Nowadays it insists on it
    http://www.sigsegv.cx/
  7. Easy to defeat? by 140Mandak262Jamuna · · Score: 4, Interesting

    The malicious websites just have to skip the malicious code when the user agent string is google crawler. Are they going to change the user agent string? Will it be considered pretexting (the euphemism for impersonating)?

    --
    sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
  8. This is a good step, but not enough by zukinux · · Score: 2, Interesting

    It's very nice from Google or any other company to do so. But I think the solution is to teach people to surf smarter! I.e When they think they want to download a movie, there's no way to download .exe file! it's just plain stupidity. People need to read the messages they pop before they click yes on every message like : By Clicking yes 1Click-weather-adware-traybar will be installed.
    One day people will learn to surf smarter, meanwhile, we will help them becoming smarter.

    --
    Read and Comment at my BLOG
    !!!
  9. It already exists somewhat by Anonymous Coward · · Score: 2, Interesting

    Tools > Options > Security > Tell me if the site i'm visiting is a suspected forgery, then the option check by asking google.

    Checks if they are forged sites and so on built right in. I would suspect not long there will be an option check if this is a bad site.

  10. Re:What you suggest is wrong and immoral by a.d.trick · · Score: 2, Interesting

    Since morality is defined by the desire to limit human suffering

    Really? I won't say that human suffering is good or anything, but I think that's a pretty short-sighted definition. I mean, if I just killed everyone there would be no more suffering.